$ rpki-client -vvf rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.mft File: ggXpeW7Gmgxz3DtbPOEsSBkrRXc.mft (raw, json) Hash identifier: wRMLmtK1j7GoqlGxqa1C4hvDRVfr6XRaFgU78Kfbyiw= Subject key identifier: 2C:C3:DE:5E:19:BA:C4:3E:CF:E3:D5:1A:65:57:71:99:30:C9:F6:87 Authority key identifier: 82:05:E9:79:6E:C6:9A:0C:73:DC:3B:5B:3C:E1:2C:48:19:2B:45:77 Certificate issuer: /CN=A919D222/serialNumber=8205E9796EC69A0C73DC3B5B3CE12C48192B4577 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.mft Manifest number: 3A Signing time: Sun 27 Apr 2025 06:21:05 +0000 Manifest this update: Sun 27 Apr 2025 06:21:04 +0000 Manifest next update: Sun 04 May 2025 06:21:04 +0000 Files and hashes: 1: ggXpeW7Gmgxz3DtbPOEsSBkrRXc.crl (hash: 38AlrF54atk9T75Czj2LSfIPa6EPksC6Sw371pzpRzo=) 2: 1852A5B0CD8011EF8728D139C4F9AE02.roa (hash: /3vnvplidMRV9xBfvWUaE3o6ToOuVyiBtlbFl/8L1Xg=) 3: 18B90242CD8011EF8728D139C4F9AE02.roa (hash: /17gKTBKMMs07+KSKB5vkpnNAFNY/B0f0Up4BfWbLBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.crl rsync://rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D222, serialNumber=8205E9796EC69A0C73DC3B5B3CE12C48192B4577 Validity Not Before: Apr 27 06:21:04 2025 GMT Not After : May 4 06:21:04 2025 GMT Subject: CN=680dccd0-fe39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b4:77:b9:27:c4:8c:ad:9b:c5:4c:47:40:9e: ef:ad:d2:6d:7a:eb:65:35:20:f3:3b:2c:26:14:da: d3:db:c8:36:8c:3b:f2:05:c7:5f:8b:73:f1:c9:7a: 12:f9:78:20:f7:01:04:26:55:c9:12:d1:36:ae:a1: ed:98:32:de:a7:0f:de:29:bb:85:ea:e9:06:44:ba: f6:9a:a0:46:d5:0b:50:f1:99:5d:bf:e8:75:24:66: 2c:45:19:e4:de:22:b8:74:c5:24:ad:b0:8f:20:4a: 82:cd:00:b1:9e:e6:83:21:9d:36:84:b3:c5:39:fd: a8:b2:db:f2:0a:62:f5:aa:03:33:d6:d3:2e:66:ff: 83:35:5f:50:55:a1:b1:53:38:69:5e:16:a2:3e:0f: c8:cf:38:85:83:d5:e4:70:39:ae:e4:1a:15:2a:49: cb:17:7a:8b:c9:95:86:73:64:9c:b2:79:6a:87:a7: cc:eb:d6:22:36:b1:24:fb:29:a7:e0:9a:9e:9e:ec: 73:3b:50:be:2f:ce:e9:78:25:d4:b7:b7:c8:d3:a0: 82:15:77:e3:f4:55:84:b9:df:37:48:0b:57:ed:54: 3d:f3:b6:f3:57:65:77:27:48:37:56:b4:91:89:68: 39:a7:d6:8c:c3:9e:c4:59:10:4f:bd:cb:d5:67:4e: 2d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C3:DE:5E:19:BA:C4:3E:CF:E3:D5:1A:65:57:71:99:30:C9:F6:87 X509v3 Authority Key Identifier: keyid:82:05:E9:79:6E:C6:9A:0C:73:DC:3B:5B:3C:E1:2C:48:19:2B:45:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D222/8764489CCD7F11EFA5848838C4F9AE02/ggXpeW7Gmgxz3DtbPOEsSBkrRXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:ce:2f:a2:e7:de:83:7f:ef:e1:29:39:c4:62:5b:93:f2:d0: 27:a4:b4:9d:fd:0c:20:20:44:62:ec:23:c8:b9:0c:92:62:da: e0:76:12:6d:38:05:74:c0:8d:b3:45:92:df:e6:c2:9a:05:fc: 7d:00:f1:b5:4d:82:57:f1:17:94:93:9f:cd:d5:b3:ab:a4:03: c6:32:a9:05:70:25:4d:02:62:8b:83:a1:82:a3:43:02:a0:8d: 3e:a6:cb:8f:01:14:e2:0a:91:63:9e:ee:d4:48:53:dd:75:1d: c4:87:60:30:00:8e:d0:f2:c1:94:d9:0d:ea:7a:e8:8e:16:12: cb:2c:4d:67:5a:61:27:1a:be:99:3a:4e:63:9c:ab:91:67:cd: a6:12:28:8a:8d:d9:09:13:af:5b:10:52:17:5f:2b:0a:42:78: 75:94:04:fc:f1:b9:c7:b7:fc:d4:33:f2:db:9e:bb:e6:4c:ba: f3:8b:22:24:30:dc:22:05:79:02:70:e2:98:f6:9b:3c:eb:cd: f9:83:93:18:bc:05:bf:6e:98:fe:99:2b:f6:98:76:79:06:87: bf:78:9b:3e:1a:ce:1a:de:12:f7:a2:0e:06:9c:de:70:3c:4c: 41:d2:51:37:f3:f0:96:00:42:8e:9b:aa:f8:00:17:1a:3c:a4: 4e:d2:91:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDIyMjExMC8GA1UEBRMoODIwNUU5Nzk2RUM2OUEwQzczREMzQjVCM0NFMTJDNDgx OTJCNDU3NzAeFw0yNTA0MjcwNjIxMDRaFw0yNTA1MDQwNjIxMDRaMBgxFjAUBgNV BAMTDTY4MGRjY2QwLWZlMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCztHe5J8SMrZvFTEdAnu+t0m1662U1IPM7LCYU2tPbyDaMO/IFx1+Lc/HJehL5 eCD3AQQmVckS0Tauoe2YMt6nD94pu4Xq6QZEuvaaoEbVC1DxmV2/6HUkZixFGeTe Irh0xSStsI8gSoLNALGe5oMhnTaEs8U5/aiy2/IKYvWqAzPW0y5m/4M1X1BVobFT OGleFqI+D8jPOIWD1eRwOa7kGhUqScsXeovJlYZzZJyyeWqHp8zr1iI2sST7Kafg mp6e7HM7UL4vzul4JdS3t8jToIIVd+P0VYS53zdIC1ftVD3ztvNXZXcnSDdWtJGJ aDmn1ozDnsRZEE+9y9VnTi2PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULMPeXhm6 xD7P49UaZVdxmTDJ9ocwHwYDVR0jBBgwFoAUggXpeW7Gmgxz3DtbPOEsSBkrRXcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEMjIyLzg3NjQ0ODlDQ0Q3 RjExRUZBNTg0ODgzOEM0RjlBRTAyL2dnWHBlVzdHbWd4ejNEdGJQT0VzU0JrclJY Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ2dYcGVXN0dtZ3h6M0R0YlBPRXNTQmtyUlhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE MjIyLzg3NjQ0ODlDQ0Q3RjExRUZBNTg0ODgzOEM0RjlBRTAyL2dnWHBlVzdHbWd4 ejNEdGJQT0VzU0JrclJYYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEzOL6Ln3oN/7+EpOcRiW5Py0CektJ39DCAgRGLsI8i5DJJi2uB2Em04 BXTAjbNFkt/mwpoF/H0A8bVNglfxF5STn83Vs6ukA8YyqQVwJU0CYouDoYKjQwKg jT6my48BFOIKkWOe7tRIU911HcSHYDAAjtDywZTZDep66I4WEsssTWdaYScavpk6 TmOcq5FnzaYSKIqN2QkTr1sQUhdfKwpCeHWUBPzxuce3/NQz8tueu+ZMuvOLIiQw 3CIFeQJw4pj2mzzrzfmDkxi8Bb9umP6ZK/aYdnkGh794mz4azhreEveiDgac3nA8 TEHSUTfz8JYAQo6bqvgAFxo8pE7SkXg= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:52 2025 by rpki-client on console.sobornost.net